1. Manuals
  2. Brands
  3. Brocade Communications Systems Manuals
  4. Switch
  5. ServerIron ADX 12.4.00a
  6. Security manual

Displaying Ip Address With Held Down Traffic; Refusing New Connections From A Specified Ip Address - Brocade Communications Systems ServerIron ADX 12.4.00a Security Manual

Version 12.4.00a
Hide thumbs
Table of Contents

Advertisement

1
Transaction Rate Limit (TRL)
ServerIronADX#show client-trl trl-policy1 ipv6 40
Max Count: 2500
IP address/Mask
---------------
300::3a95/128
300::3a96/128
Syntax: show client-trl <policy-name> { ipv4 | ipv6} <index>
The <policy-name> variable specifies the TRL policy that you want to display rules for.
The show client-trl command displays entries in the TRL policy list, starting from the point specified
with the <index> parameter.

Displaying IP address with held down traffic

To display a list of IPv4 and IPv6 addresses whose traffic has been held down, enter commands
such as the following.
ServerIronADX# rconsole 2 1
ServerIronADX2/1 #show security holddown
source
192.168.2.30
192.168.2.40
Syntax: rconsole <slotnum> <cpunum>
Syntax: show security holddown
The following table lists the output from the show security holddown command.
TABLE 1
Field
source
destination
vers
attempt
start
last
HD
time

Refusing new connections from a specified IP address

Use the security hold-source-ip command to refuse new connections from a specified IP address
for a specified amount of time. This feature applies to all TCP, UDP, and ICMP traffic originating
from the specified IP address.
Syntax: [no] security hold-source-ip <ip-address> <minutes>
16
Total Count: 2
interval
--------
1
66
destination
vers attempt start
Any tcp
Any tcp
Output from the show security holddown command
Description
Source IPv4 or IPv6 address that is currently being held down
TCP, UDP, or ICMP depending on the type of traffic sent by the client.
Used by Brocade Technical Support.
Number of connection attempts made by the client during the current monitoring interval.
Time stamp representing the start of the monitoring interval.
Time stamp representing the last time the ServerIron received a connection request from
the client.
Whether the IP address is currently being held down. Y indicates that the address is being
held down. N indicates that it is not.
Time remaining for this IP address to be held down, if the HD field contains Y.
attempts
holddown
--------
--------
67
93
38
34
last
0
000ab6ae
00000000 Y
0
000ab6ea
00000000 Y
HD time
9
9
ServerIron ADX Security Guide
53-1002440-03

Advertisement

Table of Contents
loading

Related Manuals for Brocade Communications Systems ServerIron ADX 12.4.00a

Related Content for Brocade Communications Systems ServerIron ADX 12.4.00a

This manual is also suitable for:

Serveriron adx 1000Serveriron adx 4000Serveriron adx 8000Serveriron adx 10000

Table of Contents